Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/YsX-UK1rwAMXr9plLPmGAzMQ_1Q.roa
File: YsX-UK1rwAMXr9plLPmGAzMQ_1Q.roa (raw, json)
Hash identifier: fpPb7jHvmnNNTv/3s79Q47LlR5mEZOs5e8WM1/s2LhI=
Subject key identifier: 62:C5:FE:50:AD:6B:C0:03:17:AF:DA:65:2C:F9:86:03:33:10:FF:54
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 11F9
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/YsX-UK1rwAMXr9plLPmGAzMQ_1Q.roa
Signing time: Mon 26 Aug 2024 05:18:08 +0000
ROA not before: Mon 26 Aug 2024 05:18:08 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 3462
IP address blocks: 122.116.0.0/15 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 20:36:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4601 (0x11f9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Aug 26 05:18:08 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=62C5FE50AD6BC00317AFDA652CF986033310FF54
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:04:3b:60:ad:c2:6b:af:e2:c8:6c:37:dd:9b:
6d:5c:73:84:59:a5:12:23:91:30:4c:4b:24:81:bb:
46:89:a8:5f:ce:e6:44:9e:f5:4a:f2:19:34:dd:74:
7e:f0:cb:96:a3:06:84:27:32:33:fc:9b:05:ff:86:
22:e3:88:2e:76:f3:6c:07:af:c2:9f:56:1d:b1:18:
e8:5e:0c:ec:2f:ba:b4:b1:d4:69:96:30:c8:b2:b0:
f8:e5:73:c7:15:7f:a1:16:71:39:19:95:ac:2c:1c:
ae:2a:d2:00:ef:8d:67:6c:e0:49:24:2c:b1:55:4e:
94:ca:4f:f3:e3:5a:3e:9e:60:a2:ff:18:35:ce:a7:
a6:b3:dc:39:e9:4f:d7:4e:ff:4c:5f:b2:2b:84:52:
26:6b:88:99:20:8d:dd:ed:de:94:29:a8:78:cc:e6:
26:29:6b:00:bf:ec:4e:b7:14:a0:60:dc:fa:94:2b:
21:90:32:17:41:c6:09:eb:40:2d:60:d7:6e:54:bc:
cc:44:7e:a8:1a:d9:79:4e:5b:54:63:63:3b:68:1a:
d6:b4:be:c6:45:35:96:52:db:0d:c3:be:6e:d8:ff:
74:5d:93:2e:47:d7:88:30:13:4d:9c:f9:f3:b2:50:
31:34:dc:d1:59:a2:24:17:45:6e:6e:82:ea:24:62:
e0:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:C5:FE:50:AD:6B:C0:03:17:AF:DA:65:2C:F9:86:03:33:10:FF:54
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/YsX-UK1rwAMXr9plLPmGAzMQ_1Q.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
122.116.0.0/15
Signature Algorithm: sha256WithRSAEncryption
77:4a:c6:c4:42:35:8a:d1:4d:b6:93:e0:17:b2:75:28:18:67:
c2:d6:a5:aa:3f:03:54:d9:a5:84:15:32:52:ae:b7:69:dc:a5:
ee:83:90:52:60:c9:ec:ab:a4:38:0e:30:f2:44:8d:dc:b2:83:
b7:5b:10:40:74:ec:3c:0a:64:37:9d:83:c4:0b:60:3b:ee:4a:
07:84:29:65:c7:14:85:aa:ee:d3:89:27:3b:69:6b:44:d6:fd:
94:5a:7f:0d:11:59:50:0a:4c:7b:c4:74:f7:65:9c:fd:70:d1:
62:a2:6e:18:23:16:fc:dd:b1:7d:32:5a:d7:91:6e:64:01:4b:
52:83:c6:a9:7e:20:4b:d5:c8:f0:c1:d1:3d:70:81:1e:d0:d9:
ca:fc:e8:62:f2:e6:4d:c9:e0:db:bf:35:1d:25:ad:87:e0:3d:
d6:35:28:76:ec:82:cb:f5:5b:11:90:b0:59:06:0f:a5:28:d1:
04:f7:f7:16:31:a1:40:5f:f2:9c:45:eb:3b:a4:8f:6b:65:15:
4a:e1:4c:16:cb:09:58:ba:0d:c4:1d:00:6b:a7:d0:29:c3:9b:
fd:85:e1:a5:d9:b0:41:d7:1b:f6:0f:38:b6:fe:9f:2d:03:19:
d3:9c:e6:95:da:c2:eb:68:bb:d1:50:b8:b7:9a:51:3a:80:46:
3a:a8:ee:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:33:16 2025 by rpki-client